SCUM on this forum.

[ChrisGooding]

I don't have 50 posts you would ban me to

 

Not based on your post count

 

Only kidding of course

 

I do think that there should be a section for license holders, though the minimum post count would be a biz overboard, regardless of the number.

 

And as said many many times, make sure your system is secure (not just the admin login section). I do believe that there is an EXCELLENT thread going on with regards to having a fake admin page for catching potential baddies. It also has a large ammount of general security tips.

 

If you haven't read it yet, you should do so!!

 

http://forum.whmcs.com/showthread.php?t=10263&highlight=fake+admin

[VicToMeyeZR]

you can also paasword protect the admin directory you ARE using for your admin area

[bonked]

What else is new? People try to hack other's accounts on a routine basis...

 

Good thing WHMCS has pretty good lock out settings.

[redrat]

Scum always rises to the surface. That is its' downfall. They need attention so always leave a calling card.

[freedom internet]

Here's another thought that might not have occurred to those that believe this forum is the only source for these attacks:

Google: Results 1 - 10 of about 119,000

Not sure removing access to any part of this forum would make it harder to find licensed users. That in combination with buying branding free might.

 

Wouldn't it be easy to just have the branded link set so that search engines don't index / follow these? I'm one of those using the branded license and don't have an issue with the brand being at the bottom but if it is causing a problem for it being listed on Google, a simple change to the code to prevent indexing would seem like a good will gesture in the interests of security.

[WisTex]

My experience with other web-based software prone to attacks, is that purchasing the brand free version and changing the directory the web-based software is installed in to something other than the default reduces the number of attacks, since it eliminates two key "signatures" that hackers would be looking for: the "Powered by" string of text, and the default URL pattern.

 

Yup, that.

 

 

Yes!...er...I mean, no!

It's unlikely we will be implementing any sort of post limits at this point.

I'd suggest it's also unlikely that the licensing system will be tied into this, meaning that any sort of confirmation would have to happen manually. This would mean not only verifying they are allowed to access after purchase, but monitoring if they've sold their license or stopped paying for monthly licenses.

 

That's a full time job when you have a forum with 14,672 members registered.

 

And what would it gain?

Purchasing a license doesn't guarantee they aren't bad people.

Here's another thought that might not have occurred to those that believe this forum is the only source for these attacks:

Google: Results 1 - 10 of about 119,000

Not sure removing access to any part of this forum would make it harder to find licensed users. That in combination with buying branding free might.

[keliix06]

Wouldn't it be easy to just have the branded link set so that search engines don't index / follow these? I'm one of those using the branded license and don't have an issue with the brand being at the bottom but if it is causing a problem for it being listed on Google, a simple change to the code to prevent indexing would seem like a good will gesture in the interests of security.

 

You cannot prevent the indexing of a string of text on your page, unless it's there in JavaScript/Image/Flash. That would then prevent some of the good of having it that WHMCS is looking for and search engines will find it in JS soon anyway.

 

You can certainly prevent the indexing of your install with robots.txt, but that would be a horrible option by default.